O'Reilly logo

Wireshark Network Security by Piyush Verma

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Wireshark command-line fu

In order to work conveniently with the command-line tools that come with Wireshark, it is recommended to add the path of the local Wireshark directory to the system environment variables. As we move ahead, I will assume that you've already configured the system environment variable as mentioned. Having said that, now let's look at the following more useful command-line utilities that ship with Wireshark:

  • tshark
  • capinfos
  • editcap
  • mergecap

Tip

Pass the -h argument with any of the command-line utilities to browse through the help options with each utility. For example, open the command prompt and run tshark –h.

tshark

The command-line version of Wireshark: tshark is used to capture and often display packets in typical situations ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required